Please check with your domain administrator as this may require changes to your mail server." +msgstr "Integracja z Twitterem wymaga generowania fikcyjnych adresów email w celu autoryzowania użytkowników.
Proszę sprawdź u swojego administratora serwera czy to wymaga zmian w Twoim serwerze poczty." + +#: .././admin.php:76 +msgid "Consumer Key" +msgstr "Klucz konsumenta (API)" + +#: .././admin.php:80 +msgid "Consumer Secret" +msgstr "Sekretny klucz" + +#: .././admin.php:85 +msgid "OpenID Providers" +msgstr "Dostawcy OpenID" + +#: .././admin.php:86 +msgid "Choose the OpenID providers your visitors can use to register, comment and login." +msgstr "Wybierz dostawców OpenID dzięki którym odwiedzający będą mogli się logować, rejestrować i komentować wpisy." + +#: .././admin.php:109 +msgid "Save Changes" +msgstr "Zapisz zmiany" + +#: .././admin.php:112 +msgid "Rewrite Diagnostics" +msgstr "Diagnostyka przekierowań" + +#: .././admin.php:113 +msgid "Click on the link below to confirm your URL rewriting and query string parameter passing are setup correctly on your server. If you see a \"Test was successful\" message after clicking the link then you are good to go. If you see a 404 error or some other error then you need to update rewrite rules or ask your service provider to configure your server settings such that the below URL works correctly." +msgstr "Kliknij w link poniżej aby sprawdzić czy ustawienia serwera dotyczące przekierowań są prawidłowe. Jeśli widzisz komunikat \"Pozytywny wynik testu\" po kliknięciu poniższego linku to znaczy, że konfiguracja jest prawidłowa. Jeśli widzisz błąd 404 lub jakiś inny błąd musisz zaktualizować ustawienia przekierowań lub skontaktować się z dostawcą hostingu w sprawie odpowiedniej konfiguracji serwera." + +#: .././admin.php:114 +msgid "Test server redirection settings" +msgstr "Sprawdź ustawienia serwera" + +#: .././social-connect.php:20 +#, php-format +msgid "Sorry, but you can not run Social Connect. It requires WordPress 3.0 or newer. Consider upgrading your WordPress installation, it's worth the effort.
Return to Plugins Admin page »" +msgstr "Przykro nam, ale nie możesz korzystać z Social Connect. Wymagany jest WordPress w wersji 3.0 lub wyższej. Proszę rozważyć aktualizację WordPressa.
Return to Plugins Admin page »" + +#: .././social-connect.php:22 +#, php-format +msgid "Sorry, but you can not run Social Connect. It requires the PHP libcurl extension be installed. Please contact your web host and request libcurl be installed.
Return to Plugins Admin page »" +msgstr "Przykro nam, ale nie możesz korzystać z Social Connect. Wymagana jest rozszerzenie PHP libcurl. Proszę skontaktować się z obsługą hostingu w celu zainstalowania tego rozszerzenia.
Wróć do listy wtyczek »" + +#: .././social-connect.php:24 +#, php-format +msgid "Sorry, but you can not run Social Connect. It requires PHP 5.1.2 or newer. Please contact your web host and request they migrate your PHP installation to run Social Connect.
Return to Plugins Admin page »" +msgstr "Przykro nam, ale nie możesz korzystać z Social Connect. Wymagana wersja PHP to 5.1.2 lub nowsza. Proszę skontaktować się z obsługą hostingu w celu uruchomienia odpowiedniej wersji PHP.
Wróć do listy wtyczek »" + +#: .././ui.php:21 +msgid "Connect with" +msgstr "Połącz z" + +#: .././ui.php:63 +#, php-format +msgid "Welcome back %s, %scontinue?%s" +msgstr "Witaj %s, %skontynuujemy?%s" + +#: .././ui.php:66 +msgid "Not you?" +msgstr "To nie Ty?" + +#: .././ui.php:67 +msgid "Use another account" +msgstr "Użyj innego konta" + +#: .././ui.php:82 +msgid "Enter your OpenID URL" +msgstr "Wprowadź adres URL dostawcy OpenID" + +#: .././ui.php:85 +#: .././ui.php:93 +msgid "Proceed" +msgstr "Dalej" + +#: .././ui.php:90 +msgid "Enter your WordPress.com blog URL" +msgstr "Uzupełnij adres swojego bloga na WordPress.com" + +#: .././ui.php:162 +msgid "Login or register with Facebook, Twitter, Yahoo, Google or a Wordpress.com account" +msgstr "Logowanie oraz rejestracja za pomocą konta Facebook, Twitter, Yahoo, Google lub WordPress.com." + +#: .././ui.php:214 +msgid "Title:" +msgstr "Tytuł:" + +#: .././ui.php:216 +msgid "Before widget content:" +msgstr "Dodaj przed treścią:" + +#: .././ui.php:218 +msgid "After widget content:" +msgstr "Dodaj za treścią:" + +#: .././ui.php:220 +msgid "Hide for logged in users:" +msgstr "Ukryj dla zalogowanych:" + +#: .././diagnostics/test.php:8 +msgid "Test was successful!
The rewrite rules on your server appear to be setup correctly for Social Connect to work." +msgstr "Pozytywny wynik testu!
Zasady przepisywania adresów na Twoim serwerze są odpowiednie dla poprawnego działania Social Connect." + +#: .././diagnostics/test.php:10 +#, php-format +msgid "Test was unsuccessful. Expected \"http://www.example.com\", received \"%s\"." +msgstr "Test nieudany. Oczekiwano \"http://www.example.com\", otrzymano \"%s\"." + +#: .././diagnostics/test.php:20 +msgid "Social Connect Diagnostics" +msgstr "Diagnostyka Social Connect" + diff --git a/www/wp-content/plugins/social-connect/liveid/callback.php b/www/wp-content/plugins/social-connect/liveid/callback.php new file mode 100755 index 0000000..6107370 --- /dev/null +++ b/www/wp-content/plugins/social-connect/liveid/callback.php @@ -0,0 +1,110 @@ +$liveid_appid,"secret"=>$liveid_secret,"securityalgorithm"=>$liveid_secalgo,"returnurl"=>$liveid_return,"policyurl"=>$liveid_policy); + +// Initialize the WindowsLiveLogin module. +$wll = WindowsLiveLogin::initFromXml(false,$liveid_settings); +$wll->setDebug($DEBUG); + +// Extract the 'action' parameter, if any, from the request. +$action = @$_REQUEST['action']; + +// If action is 'logout', clear the login cookie and redirect to the +// logout page. +// +// If action is 'clearcookie', clear the login cookie and return a GIF +// as a response to signify success. +// +// If action is 'login', try to process sign-in. If the sign-in is +// successful, cache the user token in a cookie and redirect to the +// site's main page. If sign-in failed, clear the cookie and redirect +// to the main page. +// +// If action is 'delauth', get user token from the cookie. Process the +// consent token. If the consent token is valid, store the raw consent +// token in persistent storage. Redirect to the site's main page. +switch ($action) { + case 'logout': + setcookie($WEBAUTHCOOKIE); + header("Location: $LOGOUT"); + break; + case "clearcookie": + ob_start(); + setcookie($WEBAUTHCOOKIE); + + list($type, $response) = $wll->getClearCookieResponse(); + header("Content-Type: $type"); + print($response); + + ob_end_flush(); + break; + case 'login': + $user = $wll->processLogin($_REQUEST); + + if ($user) { + if ($user->usePersistentCookie()) { + setcookie($WEBAUTHCOOKIE, $user->getToken(), $COOKIETTL); + } + else { + setcookie($WEBAUTHCOOKIE, $user->getToken()); + } + header("Location: $LOGIN"); + } + else { + setcookie($WEBAUTHCOOKIE); + header("Location: $LOGIN"); + } + break; + case 'delauth': + $user = null; + $logintoken = @$_COOKIE[$WEBAUTHCOOKIE]; + + if ($logintoken) { + $user = $wll->processToken($logintoken); + } + + if ($user) { + $consent = $wll->processConsent(@$_REQUEST); + if ($consent && $consent->isValid()) { + //$tokens = new TokenDB($TOKENDB); + //$tokens->setToken($user->getId(), $consent->getToken()); + update_option($user->getId(),$consent->getToken()); + } else { + update_option($user->getId(),""); + } + } + header("Location: $LOGIN"); + break; + default: + header("Location: $LOGIN"); + break; +} +?> diff --git a/www/wp-content/plugins/social-connect/liveid/connect.php b/www/wp-content/plugins/social-connect/liveid/connect.php new file mode 100755 index 0000000..be4a37f --- /dev/null +++ b/www/wp-content/plugins/social-connect/liveid/connect.php @@ -0,0 +1,182 @@ +$liveid_appid,"secret"=>$liveid_secret,"securityalgorithm"=>$liveid_secalgo,"returnurl"=>$liveid_return,"policyurl"=>$liveid_policy); + + +if($liveid_appid && $liveid_secret && $liveid_secalgo) { + // Initialize the WindowsLiveLogin module. + $wll = WindowsLiveLogin::initFromXml(false,$liveid_settings); + $wll->setDebug($DEBUG); + $APPID = $wll->getAppId(); + + $login_html = "
This application does not know who you are! Click the Sign in link above.
"; + $consent_html = null; + + // If the user token obtained from sign-in through Web Authentication + // has been cached in a site cookie, attempt to process it and extract + // the user ID. + $token = @$_COOKIE[$WEBAUTHCOOKIE]; + + $userid = null; + if ($token) { + $user = $wll->processToken($token); + if ($user) { + $userid = $user->getId(); + } + } + + // If the user ID is obtained successfully, prepare the message + // to include the consent URL if a valid token is not present in the + // persistent store; otherwise display the contents of the token. + if ($userid) { + $login_html = "Now this application knows that you are the user with ID = \"$userid\".
"; + + $consenturl = $wll->getConsentUrl($OFFERS); + + $consent_html = "Please click here to grant consent so that we may access your Windows Live data.
"; + + // Attempt to get the raw consent token from persistent store for the + // current user ID. + //$tokens = new TokenDB($TOKENDB); + //$token = $tokens->getToken($userid); + $token = get_option($userid); + + $consenttoken = $wll->processConsentToken($token); + + if ($consenttoken) { + if (!$consenttoken->isValid()) { + wp_redirect($consenturl); + } + } + + + // If a consent token is found and is stale, try to refresh it and store + // it in persistent storage. + if ($consenttoken) { + if (!$consenttoken->isValid()) { + if ($consenttoken->refresh() && $consenttoken->isValid()) { + //$tokens->setToken($userid, $consenttoken->getToken()); + update_option($userid,$consenttoken->getToken()); + } + } + + if ($consenttoken->isValid()) { + // Convert Unix epoch time stamp to user-friendly format. + $expiry = $consenttoken->getExpiry(); + $expiry = date(DATE_RFC2822, $expiry); + //Prepare the message to display the consent token contents. + $consent_html = <<| Delegation token | {$consenttoken->getDelegationToken()} |
| Location ID | {$consenttoken->getLocationID()} |
| Refresh token | {$consenttoken->getRefreshToken()} |
| Expiry | {$expiry} |
| Offers | {$consenttoken->getOffersString()} |
| Context | {$consenttoken->getContext()} |
| Token | {$consenttoken->getToken()} |
+* if ($this->data['openid_mode']) {
+* $openid = new LightOpenID;
+* echo $openid->validate() ? 'Logged in.' : 'Failed';
+* }
+*
+*
+* Optionally, you can set $returnUrl and $realm (or $trustRoot, which is an alias).
+* The default values for those are:
+* $openid->realm = (!empty($_SERVER['HTTPS']) ? 'https' : 'http') . '://' . $_SERVER['HTTP_HOST'];
+* $openid->returnUrl = $openid->realm . $_SERVER['REQUEST_URI']; # without the query part, if present
+* If you don't know their meaning, refer to any openid tutorial, or specification. Or just guess.
+*
+* AX and SREG extensions are supported.
+* To use them, specify $openid->required and/or $openid->optional before calling $openid->authUrl().
+* These are arrays, with values being AX schema paths (the 'path' part of the URL).
+* For example:
+* $openid->required = array('namePerson/friendly', 'contact/email');
+* $openid->optional = array('namePerson/first');
+* If the server supports only SREG or OpenID 1.1, these are automaticaly
+* mapped to SREG names, so that user doesn't have to know anything about the server.
+*
+* To get the values, use $openid->getAttributes().
+*
+*
+* The library requires PHP >= 5.1.2 with curl or http/https stream wrappers enabled..
+* @author Mewp
+* @copyright Copyright (c) 2010, Mewp
+* @license http://www.opensource.org/licenses/mit-license.php MIT
+*/
+class LightOpenID
+{
+ public $returnUrl
+ , $required = array()
+ , $optional = array();
+ private $identity, $claimed_id;
+ protected $server, $version, $trustRoot, $aliases, $identifier_select = false
+ , $ax = false, $sreg = false, $data;
+ static protected $ax_to_sreg = array(
+ 'namePerson/friendly' => 'nickname',
+ 'contact/email' => 'email',
+ 'namePerson' => 'fullname',
+ 'birthDate' => 'dob',
+ 'person/gender' => 'gender',
+ 'contact/postalCode/home' => 'postcode',
+ 'contact/country/home' => 'country',
+ 'pref/language' => 'language',
+ 'pref/timezone' => 'timezone',
+ );
+
+ function __construct()
+ {
+ $this->trustRoot = (!empty($_SERVER['HTTPS']) ? 'https' : 'http') . '://' . $_SERVER['HTTP_HOST'];
+ $uri = $_SERVER['REQUEST_URI'];
+ $uri = strpos($uri, '?') ? substr($uri, 0, strpos($uri, '?')) : $uri;
+ $this->returnUrl = $this->trustRoot . $uri;
+
+ $this->data = $_POST + $_GET; # OPs may send data as POST or GET.
+ }
+
+ function __set($name, $value)
+ {
+ switch ($name) {
+ case 'identity':
+ if (strlen($value = trim((String) $value))) {
+ if (preg_match('#^xri:/*#i', $value, $m)) {
+ $value = substr($value, strlen($m[0]));
+ } elseif (!preg_match('/^(?:[=@+\$!\(]|https?:)/i', $value)) {
+ $value = "http://$value";
+ }
+ if (preg_match('#^https?://[^/]+$#i', $value, $m)) {
+ $value .= '/';
+ }
+ }
+ $this->$name = $this->claimed_id = $value;
+ break;
+ case 'trustRoot':
+ case 'realm':
+ $this->trustRoot = trim($value);
+ }
+ }
+
+ function __get($name)
+ {
+ switch ($name) {
+ case 'identity':
+ # We return claimed_id instead of identity,
+ # because the developer should see the claimed identifier,
+ # i.e. what he set as identity, not the op-local identifier (which is what we verify)
+ return $this->claimed_id;
+ case 'trustRoot':
+ case 'realm':
+ return $this->trustRoot;
+ }
+ }
+
+ /**
+ * Checks if the server specified in the url exists.
+ *
+ * @param $url url to check
+ * @return true, if the server exists; false otherwise
+ */
+ function hostExists($url)
+ {
+ if (strpos($url, '/') === false) {
+ $server = $url;
+ } else {
+ $server = @parse_url($url, PHP_URL_HOST);
+ }
+
+ if (!$server) {
+ return false;
+ }
+
+ return !!gethostbynamel($server);
+ }
+
+ protected function request_curl($url, $method='GET', $params=array())
+ {
+ $params = http_build_query($params, '', '&');
+ $curl = curl_init($url . ($method == 'GET' && $params ? '?' . $params : ''));
+ curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
+ curl_setopt($curl, CURLOPT_HEADER, false);
+ curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
+ curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
+ curl_setopt($curl, CURLOPT_HTTPHEADER, array('Accept: application/xrds+xml, */*'));
+ if ($method == 'POST') {
+ curl_setopt($curl, CURLOPT_POST, true);
+ curl_setopt($curl, CURLOPT_POSTFIELDS, $params);
+ } elseif ($method == 'HEAD') {
+ curl_setopt($curl, CURLOPT_HEADER, true);
+ curl_setopt($curl, CURLOPT_NOBODY, true);
+ } else {
+ curl_setopt($curl, CURLOPT_HTTPGET, true);
+ }
+ $response = curl_exec($curl);
+
+ if($method == 'HEAD') {
+ $headers = array();
+ foreach(explode("\n", $response) as $header) {
+ $pos = strpos($header,':');
+ $name = strtolower(trim(substr($header, 0, $pos)));
+ $headers[$name] = trim(substr($header, $pos+1));
+ }
+
+ # Updating claimed_id in case of redirections.
+ $effective_url = curl_getinfo($curl, CURLINFO_EFFECTIVE_URL);
+ if($effective_url != $url) {
+ $this->claimed_id = $effective_url;
+ }
+
+ return $headers;
+ }
+
+ if (curl_errno($curl)) {
+ throw new ErrorException(curl_error($curl), curl_errno($curl));
+ }
+
+ return $response;
+ }
+
+ protected function request_streams($url, $method='GET', $params=array())
+ {
+ if(!$this->hostExists($url)) {
+ throw new ErrorException('Invalid request.');
+ }
+
+ $params = http_build_query($params, '', '&');
+ switch($method) {
+ case 'GET':
+ $opts = array(
+ 'http' => array(
+ 'method' => 'GET',
+ 'header' => 'Accept: application/xrds+xml, */*',
+ 'ignore_errors' => true,
+ )
+ );
+ $url = $url . ($params ? '?' . $params : '');
+ break;
+ case 'POST':
+ $opts = array(
+ 'http' => array(
+ 'method' => 'POST',
+ 'header' => 'Content-type: application/x-www-form-urlencoded',
+ 'content' => $params,
+ 'ignore_errors' => true,
+ )
+ );
+ break;
+ case 'HEAD':
+ # We want to send a HEAD request,
+ # but since get_headers doesn't accept $context parameter,
+ # we have to change the defaults.
+ $default = stream_context_get_options(stream_context_get_default());
+ stream_context_get_default(
+ array('http' => array(
+ 'method' => 'HEAD',
+ 'header' => 'Accept: application/xrds+xml, */*',
+ 'ignore_errors' => true,
+ ))
+ );
+
+ $url = $url . ($params ? '?' . $params : '');
+ $headers_tmp = get_headers ($url);
+ if(!$headers_tmp) {
+ return array();
+ }
+
+ # Parsing headers.
+ $headers = array();
+ foreach($headers_tmp as $header) {
+ $pos = strpos($header,':');
+ $name = strtolower(trim(substr($header, 0, $pos)));
+ $headers[$name] = trim(substr($header, $pos+1));
+
+ # Following possible redirections. The point is just to have
+ # claimed_id change with them, because get_headers() will
+ # follow redirections automatically.
+ # We ignore redirections with relative paths.
+ # If any known provider uses them, file a bug report.
+ if($name == 'location') {
+ if(strpos($headers[$name], 'http') === 0) {
+ $this->claimed_id = $headers[$name];
+ } elseif($headers[$name][0] == '/') {
+ $parsed_url = parse_url($this->claimed_id);
+ $this->claimed_id = $parsed_url['scheme'] . '://'
+ . $parsed_url['host']
+ . $headers[$name];
+ }
+ }
+ }
+
+ # And restore them.
+ stream_context_get_default($default);
+ return $headers;
+ }
+ $context = stream_context_create ($opts);
+
+ return file_get_contents($url, false, $context);
+ }
+
+ protected function request($url, $method='GET', $params=array())
+ {
+ if(function_exists('curl_init') && !ini_get('safe_mode')) {
+ return $this->request_curl($url, $method, $params);
+ }
+ return $this->request_streams($url, $method, $params);
+ }
+
+ protected function build_url($url, $parts)
+ {
+ if (isset($url['query'], $parts['query'])) {
+ $parts['query'] = $url['query'] . '&' . $parts['query'];
+ }
+
+ $url = $parts + $url;
+ $url = $url['scheme'] . '://'
+ . (empty($url['username'])?''
+ :(empty($url['password'])? "{$url['username']}@"
+ :"{$url['username']}:{$url['password']}@"))
+ . $url['host']
+ . (empty($url['port'])?'':":{$url['port']}")
+ . (empty($url['path'])?'':$url['path'])
+ . (empty($url['query'])?'':"?{$url['query']}")
+ . (empty($url['fragment'])?'':":{$url['fragment']}");
+ return $url;
+ }
+
+ /**
+ * Helper function used to scan for / tags and extract information
+ * from them
+ */
+ protected function htmlTag($content, $tag, $attrName, $attrValue, $valueName)
+ {
+ preg_match_all("#<{$tag}[^>]*$attrName=['\"].*?$attrValue.*?['\"][^>]*$valueName=['\"](.+?)['\"][^>]*/?>#i", $content, $matches1);
+ preg_match_all("#<{$tag}[^>]*$valueName=['\"](.+?)['\"][^>]*$attrName=['\"].*?$attrValue.*?['\"][^>]*/?>#i", $content, $matches2);
+
+ $result = array_merge($matches1[1], $matches2[1]);
+ return empty($result)?false:$result[0];
+ }
+
+ /**
+ * Performs Yadis and HTML discovery. Normally not used.
+ * @param $url Identity URL.
+ * @return String OP Endpoint (i.e. OpenID provider address).
+ * @throws ErrorException
+ */
+ function discover($url)
+ {
+ if (!$url) throw new ErrorException('No identity supplied.');
+ # Use xri.net proxy to resolve i-name identities
+ if (!preg_match('#^https?:#', $url)) {
+ $url = "https://xri.net/$url";
+ }
+
+ # We save the original url in case of Yadis discovery failure.
+ # It can happen when we'll be lead to an XRDS document
+ # which does not have any OpenID2 services.
+ $originalUrl = $url;
+
+ # A flag to disable yadis discovery in case of failure in headers.
+ $yadis = true;
+
+ # We'll jump a maximum of 5 times, to avoid endless redirections.
+ for ($i = 0; $i < 5; $i ++) {
+ if ($yadis) {
+ $headers = $this->request($url, 'HEAD');
+
+ $next = false;
+ if (isset($headers['x-xrds-location'])) {
+ $url = $this->build_url(parse_url($url), parse_url(trim($headers['x-xrds-location'])));
+ $next = true;
+ }
+
+ if (isset($headers['content-type'])
+ && strpos($headers['content-type'], 'application/xrds+xml') !== false
+ ) {
+ # Found an XRDS document, now let's find the server, and optionally delegate.
+ $content = $this->request($url, 'GET');
+
+ preg_match_all('#Return to Plugins Admin page »", 'social_connect'), admin_url( 'plugins.php' ) ), 'social-connect' ); + elseif ( !function_exists( 'curl_version' ) ) + wp_die( sprintf( __( "Sorry, but you can not run Social Connect. It requires the PHP libcurl extension be installed. Please contact your web host and request libcurl be installed.
Return to Plugins Admin page »", 'social_connect'), admin_url( 'plugins.php' ) ), 'social-connect' ); + elseif ( !function_exists( 'hash' ) ) + wp_die( sprintf( __( "Sorry, but you can not run Social Connect. It requires the PHP Hash Engine. Please contact your web host and request Hash engine be installed.
Return to Plugins Admin page »", 'social_connect'), admin_url( 'plugins.php' ) ), 'social-connect' ); + else + wp_die( sprintf( __( "Sorry, but you can not run Social Connect. It requires PHP 5.1.2 or newer. Please contact your web host and request they migrate your PHP installation to run Social Connect.
Return to Plugins Admin page »", 'social_connect'), admin_url( 'plugins.php' ) ), 'social-connect' ); + } + do_action( 'sc_activation' ); +} +register_activation_hook( __FILE__, 'sc_activate' ); + + +/** + * Registration.php is deprecated since version 3.1 with no alternative available. + * registration.php functions moved to user.php, everything is now included by default + * This file only need to be included for versions before 3.1. + */ +if ( !function_exists( 'email_exists' ) ) + require_once( ABSPATH . WPINC . '/registration.php' ); + +/** + * Internationalization of the plugin + **/ +function sc_social_connect_l10n() { + $plugin_dir = basename( dirname( __FILE__ ) ); + load_plugin_textdomain( 'social_connect', null, "$plugin_dir/languages" ); +} +add_action( 'init', 'sc_social_connect_l10n', -1000 ); + +require_once( dirname( __FILE__ ) . '/constants.php' ); +require_once( dirname( __FILE__ ) . '/utils.php' ); +require_once( dirname( __FILE__ ) . '/media.php' ); +require_once( dirname( __FILE__ ) . '/admin.php' ); +require_once( dirname( __FILE__ ) . '/ui.php' ); + + +function sc_social_connect_process_login( $is_ajax = false ){ + if ( isset( $_REQUEST[ 'redirect_to' ] ) && $_REQUEST[ 'redirect_to' ] != '' ) { + $redirect_to = $_REQUEST[ 'redirect_to' ]; + // Redirect to https if user wants ssl + if ( isset( $secure_cookie ) && $secure_cookie && false !== strpos( $redirect_to, 'wp-admin') ) + $redirect_to = preg_replace( '|^http://|', 'https://', $redirect_to ); + } else { + $redirect_to = admin_url(); + } + $redirect_to = apply_filters( 'social_connect_redirect_to', $redirect_to ); + + $social_connect_provider = $_REQUEST[ 'social_connect_provider' ]; + $sc_provider_identity_key = 'social_connect_' . $social_connect_provider . '_id'; + $sc_provided_signature = $_REQUEST[ 'social_connect_signature' ]; + + switch( $social_connect_provider ) { + case 'facebook': + social_connect_verify_signature( $_REQUEST[ 'social_connect_access_token' ], $sc_provided_signature, $redirect_to ); + $fb_json = json_decode( sc_curl_get_contents("https://graph.facebook.com/me?access_token=" . $_REQUEST[ 'social_connect_access_token' ]) ); + $sc_provider_identity = $fb_json->{ 'id' }; + $sc_email = $fb_json->{ 'email' }; + $sc_first_name = $fb_json->{ 'first_name' }; + $sc_last_name = $fb_json->{ 'last_name' }; + $sc_profile_url = $fb_json->{ 'link' }; + $sc_name = $sc_first_name . ' ' . $sc_last_name; + $user_login = strtolower( $sc_first_name.$sc_last_name ); + break; + + case 'twitter': + $sc_provider_identity = $_REQUEST[ 'social_connect_twitter_identity' ]; + social_connect_verify_signature( $sc_provider_identity, $sc_provided_signature, $redirect_to ); + $sc_name = $_REQUEST[ 'social_connect_name' ]; + $names = explode(" ", $sc_name ); + $sc_first_name = $names[0]; + $sc_last_name = $names[1]; + $sc_screen_name = $_REQUEST[ 'social_connect_screen_name' ]; + $sc_profile_url = ''; + // Get host name from URL + $site_url = parse_url( site_url() ); + $sc_email = 'tw_' . md5( $sc_provider_identity ) . '@' . $site_url['host']; + $user_login = $sc_screen_name; + break; + + case 'google': + $sc_provider_identity = $_REQUEST[ 'social_connect_openid_identity' ]; + social_connect_verify_signature( $sc_provider_identity, $sc_provided_signature, $redirect_to ); + $sc_email = $_REQUEST[ 'social_connect_email' ]; + $sc_first_name = $_REQUEST[ 'social_connect_first_name' ]; + $sc_last_name = $_REQUEST[ 'social_connect_last_name' ]; + $sc_profile_url = ''; + $sc_name = $sc_first_name . ' ' . $sc_last_name; + $user_login = strtolower( $sc_first_name.$sc_last_name ); + break; + + case 'yahoo': + $sc_provider_identity = $_REQUEST[ 'social_connect_openid_identity' ]; + social_connect_verify_signature( $sc_provider_identity, $sc_provided_signature, $redirect_to ); + $sc_email = $_REQUEST[ 'social_connect_email' ]; + $sc_name = $_REQUEST[ 'social_connect_name' ]; + $sc_username = $_REQUEST[ 'social_connect_username' ]; + $sc_profile_url = ''; + if ( $sc_name == '') { + if ( $sc_username == '') { + $names = explode("@", $sc_email ); + $sc_name = $names[0]; + $sc_first_name = $sc_name; + $sc_last_name = ''; + } else { + $names = explode(" ", $sc_username ); + $sc_first_name = $names[0]; + $sc_last_name = $names[1]; + } + } else { + $names = explode(" ", $sc_name ); + $sc_first_name = $names[0]; + $sc_last_name = $names[1]; + } + $user_login = strtolower( $sc_first_name.$sc_last_name ); + break; + + case 'wordpress': + $sc_provider_identity = $_REQUEST[ 'social_connect_openid_identity' ]; + social_connect_verify_signature( $sc_provider_identity, $sc_provided_signature, $redirect_to ); + $sc_email = $_REQUEST[ 'social_connect_email' ]; + $sc_name = $_REQUEST[ 'social_connect_name' ]; + $sc_profile_url = ''; + if ( trim( $sc_name ) == '') { + $names = explode("@", $sc_email ); + $sc_name = $names[0]; + $sc_first_name = $sc_name; + $sc_last_name = ''; + } else { + $names = explode(" ", $sc_name ); + $sc_first_name = $names[0]; + $sc_last_name = $names[1]; + } + $user_login = strtolower( $sc_first_name.$sc_last_name ); + break; + } + + // Cookies used to display welcome message if already signed in recently using some provider + setcookie("social_connect_current_provider", $social_connect_provider, time()+3600, SITECOOKIEPATH, COOKIE_DOMAIN, false, true ); + + // Get user by meta + $user_id = social_connect_get_user_by_meta( $sc_provider_identity_key, $sc_provider_identity ); + if ( $user_id ) { + $user_data = get_userdata( $user_id ); + $user_login = $user_data->user_login; + } elseif ( $user_id = email_exists( $sc_email ) ) { // User not found by provider identity, check by email + update_user_meta( $user_id, $sc_provider_identity_key, $sc_provider_identity ); + + $user_data = get_userdata( $user_id ); + $user_login = $user_data->user_login; + + } else { // Create new user and associate provider identity + if ( username_exists( $user_login ) ) + $user_login = apply_filters( 'social_connect_username_exists', strtolower("sc_". md5( $social_connect_provider . $sc_provider_identity ) ) ); + + $userdata = array( 'user_login' => $user_login, 'user_email' => $sc_email, 'first_name' => $sc_first_name, 'last_name' => $sc_last_name, 'user_url' => $sc_profile_url, 'user_pass' => wp_generate_password() ); + + // Create a new user + $user_id = wp_insert_user( $userdata ); + + if ( $user_id && is_integer( $user_id ) ) + update_user_meta( $user_id, $sc_provider_identity_key, $sc_provider_identity ); + } + + wp_set_auth_cookie( $user_id ); + + do_action( 'social_connect_login', $user_login ); + + if ( $is_ajax ) + echo '{"redirect":"' . $redirect_to . '"}'; + else + wp_safe_redirect( $redirect_to ); + exit(); +} +// Hook to 'login_form_' . $action +add_action( 'login_form_social_connect', 'sc_social_connect_process_login'); + +// Handle calls from plugins that use an Ajax for login +function sc_ajax_login(){ + if ( isset( $_POST[ 'login_submit' ] ) && $_POST[ 'login_submit' ] == 'ajax' && // Plugins will need to pass this param + isset( $_POST[ 'action' ] ) && $_POST[ 'action' ] == 'social_connect' ) + sc_social_connect_process_login( true ); +} +add_action( 'init', 'sc_ajax_login'); diff --git a/www/wp-content/plugins/social-connect/twitter/EpiCurl.php b/www/wp-content/plugins/social-connect/twitter/EpiCurl.php new file mode 100755 index 0000000..8cf18ea --- /dev/null +++ b/www/wp-content/plugins/social-connect/twitter/EpiCurl.php @@ -0,0 +1,128 @@ +mc = curl_multi_init(); + $this->properties = array( + 'code' => CURLINFO_HTTP_CODE, + 'time' => CURLINFO_TOTAL_TIME, + 'length'=> CURLINFO_CONTENT_LENGTH_DOWNLOAD, + 'type' => CURLINFO_CONTENT_TYPE + ); + } + + public function addCurl($ch) + { + $key = (string)$ch; + $this->requests[$key] = $ch; + + $res = curl_multi_add_handle($this->mc, $ch); + + // (1) + if($res === CURLM_OK || $res === CURLM_CALL_MULTI_PERFORM) + { + do { + $mrc = curl_multi_exec($this->mc, $active); + } while ($mrc === CURLM_CALL_MULTI_PERFORM); + + return new EpiCurlManager($key); + } + else + { + return $res; + } + } + + public function getResult($key = null) + { + if($key != null) + { + if(isset($this->responses[$key])) + { + return $this->responses[$key]; + } + + $running = null; + do + { + $resp = curl_multi_exec($this->mc, $runningCurrent); + if($running !== null && $runningCurrent != $running) + { + $this->storeResponses($key); + if(isset($this->responses[$key])) + { + return $this->responses[$key]; + } + } + $running = $runningCurrent; + }while($runningCurrent > 0); + } + + return false; + } + + private function storeResponses() + { + while($done = curl_multi_info_read($this->mc)) + { + $key = (string)$done['handle']; + $this->responses[$key]['data'] = curl_multi_getcontent($done['handle']); + foreach($this->properties as $name => $const) + { + $this->responses[$key][$name] = curl_getinfo($done['handle'], $const); + curl_multi_remove_handle($this->mc, $done['handle']); + } + } + } + + static function getInstance() + { + if(self::$inst == null) + { + self::$singleton = 1; + self::$inst = new EpiCurl(); + } + + return self::$inst; + } +} + +class EpiCurlManager +{ + private $key; + private $epiCurl; + + function __construct($key) + { + $this->key = $key; + $this->epiCurl = EpiCurl::getInstance(); + } + + function __get($name) + { + $responses = $this->epiCurl->getResult($this->key); + return $responses[$name]; + } +} + +/* + * Credits: + * - (1) Alistair pointed out that curl_multi_add_handle can return CURLM_CALL_MULTI_PERFORM on success. + */ +?> diff --git a/www/wp-content/plugins/social-connect/twitter/EpiOAuth.php b/www/wp-content/plugins/social-connect/twitter/EpiOAuth.php new file mode 100755 index 0000000..86fd329 --- /dev/null +++ b/www/wp-content/plugins/social-connect/twitter/EpiOAuth.php @@ -0,0 +1,258 @@ +httpRequest('GET', $this->accessTokenUrl); + return new EpiOAuthResponse($resp); + } + + public function getAuthenticateUrl() + { + $token = $this->getRequestToken(); + return $this->authenticateUrl . '?oauth_token=' . $token->oauth_token; + } + + public function getAuthorizationUrl() + { + $token = $this->getRequestToken(); + return $this->authorizeUrl . '?oauth_token=' . $token->oauth_token; + } + + public function getRequestToken() + { + $resp = $this->httpRequest('GET', $this->requestTokenUrl); + return new EpiOAuthResponse($resp); + } + + public function httpRequest($method = null, $url = null, $params = null) + { + if(empty($method) || empty($url)) + return false; + + if(empty($params['oauth_signature'])) + $params = $this->prepareParameters($method, $url, $params); + + switch($method) + { + case 'GET': + return $this->httpGet($url, $params); + break; + case 'POST': + return $this->httpPost($url, $params); + break; + } + } + + public function setToken($token = null, $secret = null) + { + $params = func_get_args(); + $this->token = $token; + $this->tokenSecret = $secret; + } + + protected function encode_rfc3986($string) + { + return str_replace('+', ' ', str_replace('%7E', '~', rawurlencode(($string)))); + } + + protected function addOAuthHeaders(&$ch, $url, $oauthHeaders) + { + $_h = array('Expect:'); + $urlParts = parse_url($url); + $oauth = 'Authorization: OAuth realm="' . $urlParts['path'] . '",'; + foreach($oauthHeaders as $name => $value) + { + $oauth .= "{$name}=\"{$value}\","; + } + $_h[] = substr($oauth, 0, -1); + + curl_setopt($ch, CURLOPT_HTTPHEADER, $_h); + } + + protected function generateNonce() + { + if(isset($this->nonce)) // for unit testing + return $this->nonce; + + return md5(uniqid(rand(), true)); + } + + protected function generateSignature($method = null, $url = null, $params = null) + { + if(empty($method) || empty($url)) + return false; + + + // concatenating + $concatenatedParams = ''; + foreach($params as $k => $v) + { + $v = $this->encode_rfc3986($v); + $concatenatedParams .= "{$k}={$v}&"; + } + $concatenatedParams = $this->encode_rfc3986(substr($concatenatedParams, 0, -1)); + + // normalize url + $normalizedUrl = $this->encode_rfc3986($this->normalizeUrl($url)); + $method = $this->encode_rfc3986($method); // don't need this but why not? + + $signatureBaseString = "{$method}&{$normalizedUrl}&{$concatenatedParams}"; + return $this->signString($signatureBaseString); + } + + protected function httpGet($url, $params = null) + { + if(count($params['request']) > 0) + { + $url .= '?'; + foreach($params['request'] as $k => $v) + { + $url .= "{$k}={$v}&"; + } + $url = substr($url, 0, -1); + } + $ch = curl_init($url); + $this->addOAuthHeaders($ch, $url, $params['oauth']); + curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); + $resp = $this->curl->addCurl($ch); + + return $resp; + } + + protected function httpPost($url, $params = null) + { + $ch = curl_init($url); + $this->addOAuthHeaders($ch, $url, $params['oauth']); + curl_setopt($ch, CURLOPT_POST, 1); + curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($params['request'])); + curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); + $resp = $this->curl->addCurl($ch); + return $resp; + } + + protected function normalizeUrl($url = null) + { + $urlParts = parse_url($url); + $scheme = strtolower($urlParts['scheme']); + $host = strtolower($urlParts['host']); + $port = intval($urlParts['port']); + + $retval = "{$scheme}://{$host}"; + if($port > 0 && ($scheme === 'http' && $port !== 80) || ($scheme === 'https' && $port !== 443)) + { + $retval .= ":{$port}"; + } + $retval .= $urlParts['path']; + if(!empty($urlParts['query'])) + { + $retval .= "?{$urlParts['query']}"; + } + + return $retval; + } + + protected function prepareParameters($method = null, $url = null, $params = null) + { + if(empty($method) || empty($url)) + return false; + + $oauth['oauth_consumer_key'] = $this->consumerKey; + $oauth['oauth_token'] = $this->token; + $oauth['oauth_nonce'] = $this->generateNonce(); + $oauth['oauth_timestamp'] = !isset($this->timestamp) ? time() : $this->timestamp; // for unit test + $oauth['oauth_signature_method'] = $this->signatureMethod; + $oauth['oauth_version'] = $this->version; + + // encoding + array_walk($oauth, array($this, 'encode_rfc3986')); + if(is_array($params)) + array_walk($params, array($this, 'encode_rfc3986')); + $encodedParams = array_merge($oauth, (array)$params); + + // sorting + ksort($encodedParams); + + // signing + $oauth['oauth_signature'] = $this->encode_rfc3986($this->generateSignature($method, $url, $encodedParams)); + return array('request' => $params, 'oauth' => $oauth); + } + + protected function signString($string = null) + { + $retval = false; + switch($this->signatureMethod) + { + case 'HMAC-SHA1': + $key = $this->encode_rfc3986($this->consumerSecret) . '&' . $this->encode_rfc3986($this->tokenSecret); + $retval = base64_encode(hash_hmac('sha1', $string, $key, true)); + break; + } + + return $retval; + } + + public function __construct($consumerKey, $consumerSecret, $signatureMethod='HMAC-SHA1') + { + $this->consumerKey = $consumerKey; + $this->consumerSecret = $consumerSecret; + $this->signatureMethod = $signatureMethod; + $this->curl = EpiCurl::getInstance(); + } +} + +class EpiOAuthResponse +{ + private $__resp; + + public function __construct($resp) + { + $this->__resp = $resp; + } + + public function __get($name) + { + if($this->__resp->code != 200) + EpiOAuthException::raise($this->__resp->data, $this->__resp->code); + + parse_str($this->__resp->data, $result); + foreach($result as $k => $v) + { + $this->$k = $v; + } + + return $result[$name]; + } +} + +class EpiOAuthException extends Exception +{ + public static function raise($message, $code) + { + switch($code) + { + case 400: + throw new EpiOAuthBadRequestException($message, $code); + case 401: + throw new EpiOAuthUnauthorizedException($message, $code); + default: + throw new EpiOAuthException($message, $code); + } + } +} + + +class EpiOAuthBadRequestException extends EpiOAuthException{} +class EpiOAuthUnauthorizedException extends EpiOAuthException{} diff --git a/www/wp-content/plugins/social-connect/twitter/EpiTwitter.php b/www/wp-content/plugins/social-connect/twitter/EpiTwitter.php new file mode 100755 index 0000000..ef7669f --- /dev/null +++ b/www/wp-content/plugins/social-connect/twitter/EpiTwitter.php @@ -0,0 +1,118 @@ + + */ +class EpiTwitter extends EpiOAuth +{ + const EPITWITTER_SIGNATURE_METHOD = 'HMAC-SHA1'; + protected $requestTokenUrl= 'http://twitter.com/oauth/request_token'; + protected $accessTokenUrl = 'http://twitter.com/oauth/access_token'; + protected $authorizeUrl = 'http://twitter.com/oauth/authorize'; + protected $authenticateUrl= 'http://twitter.com/oauth/authenticate'; + protected $apiUrl = 'http://twitter.com'; + protected $searchUrl = 'http://search.twitter.com'; + + public function __call($name, $params = null) + { + $parts = explode('_', $name); + $method = strtoupper(array_shift($parts)); + $parts = implode('_', $parts); + $path = '/' . preg_replace('/[A-Z]|[0-9]+/e', "'/'.strtolower('\\0')", $parts) . '.json'; + if(!empty($params)) + $args = array_shift($params); + + // intercept calls to the search api + if(preg_match('/^(search|trends)/', $parts)) + { + $query = isset($args) ? http_build_query($args) : ''; + $url = "{$this->searchUrl}{$path}?{$query}"; + $ch = curl_init($url); + curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); + + return new EpiTwitterJson(EpiCurl::getInstance()->addCurl($ch)); + } + + return new EpiTwitterJson(call_user_func(array($this, 'httpRequest'), $method, "{$this->apiUrl}{$path}", $args)); + } + + public function __construct($consumerKey = null, $consumerSecret = null, $oauthToken = null, $oauthTokenSecret = null) + { + parent::__construct($consumerKey, $consumerSecret, self::EPITWITTER_SIGNATURE_METHOD); + $this->setToken($oauthToken, $oauthTokenSecret); + } +} + +class EpiTwitterJson implements ArrayAccess, Countable, IteratorAggregate +{ + private $__resp; + public function __construct($response) + { + $this->__resp = $response; + } + + // Implementation of the IteratorAggregate::getIterator() to support foreach ($this as $...) + public function getIterator () + { + return new ArrayIterator($this->__obj); + } + + // Implementation of Countable::count() to support count($this) + public function count () + { + return count($this->__obj); + } + + // Next four functions are to support ArrayAccess interface + // 1 + public function offsetSet($offset, $value) + { + $this->response[$offset] = $value; + } + + // 2 + public function offsetExists($offset) + { + return isset($this->response[$offset]); + } + + // 3 + public function offsetUnset($offset) + { + unset($this->response[$offset]); + } + + // 4 + public function offsetGet($offset) + { + return isset($this->response[$offset]) ? $this->response[$offset] : null; + } + + public function __get($name) + { + if($this->__resp->code != 200) + EpiOAuthException::raise($this->__resp->data, $this->__resp->code); + + $this->responseText = $this->__resp->data; + $this->response = json_decode($this->responseText, 1); + $this->__obj = json_decode($this->responseText); + foreach($this->__obj as $k => $v) + { + $this->$k = $v; + } + + return $this->$name; + } + + public function __isset($name) + { + $value = self::__get($name); + return empty($name); + } +} diff --git a/www/wp-content/plugins/social-connect/twitter/callback.php b/www/wp-content/plugins/social-connect/twitter/callback.php new file mode 100755 index 0000000..4110c3f --- /dev/null +++ b/www/wp-content/plugins/social-connect/twitter/callback.php @@ -0,0 +1,39 @@ +setToken($_GET['oauth_token']); +$token = $twitter_api->getAccessToken(); +$twitter_api->setToken($token->oauth_token, $token->oauth_token_secret); + +$user = $twitter_api->get_accountVerify_credentials(); +$name = $user->name; +$screen_name = $user->screen_name; +$twitter_id = $user->id; +$signature = social_connect_generate_signature($twitter_id); +?> + + + + + + + + diff --git a/www/wp-content/plugins/social-connect/twitter/connect.php b/www/wp-content/plugins/social-connect/twitter/connect.php new file mode 100755 index 0000000..8c3b90b --- /dev/null +++ b/www/wp-content/plugins/social-connect/twitter/connect.php @@ -0,0 +1,18 @@ +getAuthenticateUrl()); + exit(); +} +?> +
Social Connect plugin has not been configured for Twitter
+ diff --git a/www/wp-content/plugins/social-connect/ui.php b/www/wp-content/plugins/social-connect/ui.php new file mode 100755 index 0000000..2b46ae4 --- /dev/null +++ b/www/wp-content/plugins/social-connect/ui.php @@ -0,0 +1,192 @@ + +
+
+
+
+
+comment_ID, 'social_connect_comment_via_provider', true );
+ if( $social_connect_comment_via_provider && current_user_can( 'manage_options' )) {
+ return $link . '
+
+ 
+
+
+ 
+
+
+ 
+
+
+ 
+
+
+ 
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 
';
+ } else {
+ return $link;
+ }
+}
+add_action( 'get_comment_author_link', 'sc_social_connect_render_comment_meta' );
+
+
+function sc_render_comment_form_social_connect() {
+ if( comments_open() && !is_user_logged_in()) {
+ sc_render_login_form_social_connect();
+ }
+}
+add_action( 'comment_form_top', 'sc_render_comment_form_social_connect' );
+
+
+function sc_render_login_page_uri(){
+ ?>
+
+ __( 'Login or register with Facebook, Twitter, Yahoo, Google or a Wordpress.com account', 'social_connect' ))
+ );
+ }
+
+ /** This is rendered widget content */
+ function widget( $args, $instance ) {
+ extract( $args );
+
+ if($instance['hide_for_logged_in']==1 && is_user_logged_in()) return;
+
+ echo $before_widget;
+
+ if( !empty( $instance['title'] ) ){
+ $title = apply_filters( 'widget_title', $instance[ 'title' ] );
+ echo $before_title . $title . $after_title;
+ }
+
+ if( !empty( $instance['before_widget_content'] ) ){
+ echo $instance['before_widget_content'];
+ }
+
+ sc_render_login_form_social_connect( array( 'display_label' => false ) );
+
+ if( !empty( $instance['after_widget_content'] ) ){
+ echo $instance['after_widget_content'];
+ }
+
+ echo $after_widget;
+ }
+
+ /** Everything which should happen when user edit widget at admin panel */
+ function update( $new_instance, $old_instance ) {
+ $instance = $old_instance;
+ $instance['title'] = strip_tags( $new_instance['title'] );
+ $instance['before_widget_content'] = $new_instance['before_widget_content'];
+ $instance['after_widget_content'] = $new_instance['after_widget_content'];
+ $instance['hide_for_logged_in'] = $new_instance['hide_for_logged_in'];
+
+ return $instance;
+ }
+
+ /** Widget edit form at admin panel */
+ function form( $instance ) {
+ /* Set up default widget settings. */
+ $defaults = array( 'title' => '', 'before_widget_content' => '', 'after_widget_content' => '' );
+
+ foreach( $instance as $key => $value )
+ $instance[ $key ] = esc_attr( $value );
+
+ $instance = wp_parse_args( (array)$instance, $defaults );
+ ?>
+
+
+
+
+
+
+
+
+ />
+
- + + + -
- - - - - - - -
++ + + + + + + +
+ +